cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
SOLVED

Attack Simulator emails bypass mail flow rules

Fixxser2
Brass Contributor

‎Feb 16 2023 12:51 PM

‎Feb 16 2023 12:51 PM

Attack Simulator emails bypass mail flow rules

Is there any documentation for Attack Simulator emails bypassing mail flow rules?

 

We have a mailflow rule that marks and appends a disclaimer to all external emails coming in.  When using the Attack Simulator, emails are bypassed.

28.3K Views
0 Likes
2 Replies
Reply
2 Replies
best response confirmed by Fixxser2 (Brass Contributor)
Vasil Michev

‎Feb 17 2023 12:09 AM

‎Feb 17 2023 12:09 AM

Solution

Re: Attack Simulator emails bypass mail flow rules

That's by design, the whole idea is to see how the end users react to a bad email, not to test your hygiene configuration.
1 Like
Reply
ExMSW4319

‎Feb 19 2023 07:00 AM

‎Feb 19 2023 07:00 AM

Re: Attack Simulator emails bypass mail flow rules

Look in Threat Explorer and you will see that the mails do not even arrive via the conventional delivery pipeline so do not appear there. They are simply written directly from the simulator to each recipient's Inbox. If you want your simulations to display your normal disclaimer for external mail, you will need to include your disclaimer block in the payload.
1 Like
Reply
1 best response

Accepted Solutions
best response confirmed by Fixxser2 (Brass Contributor)
Vasil Michev

‎Feb 17 2023 12:09 AM

‎Feb 17 2023 12:09 AM

Solution

Re: Attack Simulator emails bypass mail flow rules

That's by design, the whole idea is to see how the end users react to a bad email, not to test your hygiene configuration.

View solution in original post

1 Like
Reply